The Authority of Information Security (AIS) detected 204 attacks to information systems in Vietnam in October, a decrease of 18.4 percent compared with the previous month, and 79.8 percent compared with October 2023. 

As such, in the last three months, the number of cyberattacks to information systems in Vietnam has been on the decrease, from 349 in August to 250 in September and to 204 in October.

From early 2024 to the end of October, the number of cyberattacks to information systems in Vietnam was 4,483 (the figure was 10,513 the same period last year).

The downward number of cyberattacks, according to experts, shows improved institution and business awareness of the need to ensure security for information systems.

Trieu Thi Thu Lan from KPMG Vietnam, at the CIO CSO Summit 2024 held some days ago, commented that many domestic institutions and businesses have raised priority orders for work to ensure information security.

However, experts, while reporting a drop in the number of cyberattacks, warned that the danger and risks of cyberattack campaigns are on the rise.

In the first months of the year, Vietnam’s cyberspace witnessed ransomware attacks affected many important information systems that contain data of enterprises and institutions in major business fields such as telecommunications, power, securities and logistics.

Ransomware attacks can affect the operation and reputation of businesses and organizations, and cause economic losses.

According to AIS, international criminals are increasingly interested in Vietnam’s businesses. It said that amid high threats in cyberspace, agencies, organizations and businesses need to be vigilant and improve their information security and danger prevention and control capability.

AIS has recommended three groups of solutions that agencies, organizations and businesses need to deploy in responding to risks: good plans to respond to cyberattacks; investment to ensure information security and regular practice of solutions to respond to attacks.

They need to build comprehensive information security plans, including measures to detect and quickly react to attacks.

AIS noted that it is necessary to pay special attention to offline data backup as an important solution to protect information, and to apply different measures to discover information systems quickly after the attacks. 

The most important principle is to put information systems into use only after they are deemed safe.

Van Anh